Juicebox V2 contest - kaden's results

The decentralized fundraising and treasury protocol.

General Information

Platform: Code4rena

Start Date: 01/07/2022

Pot Size: $75,000 USDC

Total HM: 17

Participants: 105

Period: 7 days

Judge: Jack the Pug

Total Solo HM: 5

Id: 143

League: ETH

Juicebox

Findings Distribution

Researcher Performance

Rank: 88/105

Findings: 1

Award: $38.24

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest Page Github Contest Repository Github Findings Repository Juicebox

Findings Information

🌟 Selected for report: 0xA5DF

Also found by: 0v3rf10w, 0x09GTO, 0x1f8b, 0x29A, 0xDjango, 0xKitsune, 0xNazgul, 0xdanial, 0xf15ers, Aymen0909, Bnke0x0, Ch_301, Cheeezzyyyy, Chom, ElKu, Funen, Hawkeye, IllIllI, JC, JohnSmith, Kaiziron, Lambda, Limbooo, Meera, Metatron, MiloTruck, Noah3o6, Picodes, Randyyy, RedOneN, ReyAdmirado, Rohan16, Saintcode_, Sm4rty, TomJ, Tomio, Tutturu, UnusualTurtle, Waze, _Adam, __141345__, ajtra, apostle0x01, asutorufos, brgltd, c3phas, cRat1st0s, codexploder, defsec, delfin454000, djxploit, durianSausage, exd0tpy, fatherOfBlocks, hake, horsefacts, ignacio, jayfromthe13th, joestakey, jonatascm, kaden, kebabsec, m_Rassska, mektigboy, mrpathfindr, oyc_109, rajatbeladiya, rbserver, rfa, robee, sach1r0, sashik_eth, simon135

Awards

38.2406 USDC - $38.24

Labels

bug

G (Gas Optimization)

valid

External Links

Link to GitHub issue

Use do while loop instead of for loop since guaranteed to run at least once, e.g.
- https://github.com/jbx-protocol/juice-contracts-v2-code4rena/blob/828bf2f3e719873daa08081cfa0d0a6deaa5ace5/contracts/JBDirectory.sol#L275

uint256 _i;
do {
  for (uint256 _j = _i + 1; _j < _terminals.length; _j++)
    if (_terminals[_i] == _terminals[_j]) revert DUPLICATE_TERMINALS();
  
  unchecked {
    ++_i;
  }
} while (_i < _terminals.length);

Unnecessary mem var
Use assembly selfbalance() instead of address(this).balance
- https://github.com/jbx-protocol/juice-contracts-v2-code4rena/blob/828bf2f3e719873daa08081cfa0d0a6deaa5ace5/contracts/JBETHERC20SplitsPayer.sol#L152
- https://github.com/jbx-protocol/juice-contracts-v2-code4rena/blob/828bf2f3e719873daa08081cfa0d0a6deaa5ace5/contracts/JBETHERC20ProjectPayer.sol#L162
Use efficient iterator incrementation
- Seen throughout the contracts
- Use ++i instead of i++
- Use unchecked block e.g.

for (uint256 i; i < arr.length;) {
  ...
  unchecked {
    ++i;
  }
}

For all uints, use > 0 instead != 0
- Seen throughout the contracts
Use > value - 1 instead of >= value. Conversely, use < value + 1 instead of <= value
- Seen throughout the contracts
Drop into assembly for == 0 checks
- Seen throughout the contracts e.g.

function isZero(uint256/address/bool/etc value) returns (bool result) {
  assembly {
    bool := iszero(value);
  } 
}

Separate conditions
- Seen throughout the contracts Instead of, e.g.

if (condition && anotherCondition) {
  doSomething();
}

if (condition) {
  if (anotherCondition) {
    doSomething();
  }
}

Juicebox V2 contest - kaden's results

The decentralized fundraising and treasury protocol.

General Information

Findings Distribution

Researcher Performance

External Links

[G-55] Gas Report - $38.24

Findings Information

Awards

Labels

External Links